} $REALSON = null; $connection = _MySQLConnect($AccountDBHost, $DBUser, $DBPassword, $AccountDB); $query = mysql_query("SELECT FROM_UNIXTIME(`bandate`) AS `BAN_DATE`, FROM_UNIXTIME(`unbandate`) AS `UNBAN_DATE`,`bannedby`,`banreason` FROM `account_banned` WHERE `id` = " . (int) _getAccountID() . " AND `active` = 1;", $connection) or die(mysql_error()); $result = mysql_fetch_array($query); if (!$result) { $_SESSION['TCA'] = false; echo _getAlreadyEffectSTR("<h2>" . $L[38] . "</h2>"); } else { if (isset($_SESSION['TCA']) && $_SESSION['TCA']) { if (_isEnoughMythCoins($PriceForUnban, $connection)) { _SpendMythCoins($PriceForUnban, 9, $_SESSION['AccountUN'], (int) _getAccountID(), 0, 0, !empty($result['bannedby']) ? $result['bannedby'] : "Server" . " : " . $result['banreason'], $connection); //_UnbanAccount($connection); $REALSON = _GDiv($L[17]); $_SESSION['TCA'] = false; } else { $REALSON = _RDiv($L[18]); } } else { $_SESSION['TCA'] = true; } echo "\n <div class = 'text-center'>" . $REALSON . "\n <h2>" . $L[94] . "</h2>\n </div>\n <fieldset>\n <div class = 'charBox alert alert-error'>\n <table>\n <tr>\n <td width = '73'>\n <img class = 'img-rounded' src = '_template/img/_faces/0-0-0-0.png' border = 'none'>\n </td>\n <td width = '340'>\n <h4>" . $result['banreason'] . "</h4>\n <span class = ''>" . $L[165] . "</span>" . _AU_BAN_AUTHOR_STR($result['bannedby']) . "<br/>\n <span class = ''>" . $L[166] . "</span>" . $result['BAN_DATE'] . "<br/>\n <span class = ''>" . $L[167] . "</span>" . $result['UNBAN_DATE'] . "\n </td>\n </tr>\n </table>\n </div>\n <div class = 'charBox alert alert-success'>\n <table>\n <tr>\n <td width = '73'>\n <img class = 'img-rounded' src = '_template/img/_faces/0-0-0-0.png' border = 'none'>\n </td>\n <td width = '340'>\n <h4>" . $result['banreason'] . "</h4>\n <span class = ''>" . $L[165] . "</span>" . _AU_BAN_AUTHOR_STR($result['bannedby']) . "<br/>\n <span class = ''>" . $L[166] . "</span>" . $result['BAN_DATE'] . "<br/>\n <span class = ''>" . $L[167] . "</span>" . $L[168] . "\n </td>\n </tr>\n </table>\n </div>\n </fieldset>\n <fieldset>\n <form action = " . $_SERVER['PHP_SELF'] . " method = 'POST'>\n " . _BDiv(_PRICE_STR($PriceForUnban)) . "\n <div class = 'text-center'>\n <button class = 'btn btn-primary' type = 'submit'>" . _getPriceButtonSTR($PriceForUnban) . "</button>\n </div>\n </form>\n </fieldset>"; } mysql_close($connection) or die(mysql_error()); include_once '_template/_footer.php'; ob_end_flush(); function _AU_BAN_AUTHOR_STR($X) { global $L; return empty($X) ? $L[39] : $X; }
if (_getUsername()) { Header('Location: _userside.php'); } if (!isset($_POST['username']) || !isset($_POST['password']) || !isset($_POST['CaptchaText']) || empty($_POST['username']) || empty($_POST['password']) || empty($_POST['CaptchaText'])) { $REASON = _RDiv($L[147]); } else { if ($_SESSION['capcha'] != strtolower($_POST['CaptchaText'])) { $REASON = _RDiv($L[145]); } else { $username = _Z($_POST['username']); $SHA1Password = SHA1Password($username, _Z($_POST['password'])); $connection = _MySQLConnect($AccountDBHost, $DBUser, $DBPassword, $AccountDB); $query = mysql_query("SELECT `id`,`username` FROM `account` WHERE `username` = '" . _X($username) . "' AND `sha_pass_hash` = '" . _X($SHA1Password) . "';", $connection) or die(mysql_error()); $result = mysql_fetch_array($query); if (empty($result['username'])) { $REASON = _RDiv($L[157]); mysql_close($connection) or die(mysql_error()); } else { $_SESSION['AccountID'] = $result['id']; $_SESSION['AccountUN'] = strtoupper($result['username']); $query = mysql_query("SELECT `id` FROM `account_details` WHERE `id` = " . (int) _getAccountID() . ";", $connection) or die(mysql_error()); $result = mysql_fetch_array($query); if (empty($row[0])) { mysql_query("INSERT IGNORE INTO `account_details`(`id`) VALUES (" . (int) _getAccountID() . ");", $connection) or die(mysql_error()); } mysql_close($connection) or die(mysql_error()); Header('Location: _userside.php'); } } } ?>
$REALSON = _GDiv($L[17]); _removeDeserterDebuffFromCharacter($GUID, $RealmID, $DBUser, $DBPassword); } else { mysql_close($connection) or die(mysql_error()); $REALSON = _getNotEnoughtFireSTR(); } unset($_SESSION['TCA']); } else { Header('Location: _userside.php'); } } // die("EXEPTION"); if (_doesRealmExists($RealmID, $DBUser, $DBPassword, isset($SA))) { if (_doesCharacterExistsOnAccount($DBUser, $DBPassword, $RealmID, $GUID, isset($SA))) { if (_doesCharacterNotOnlineATM($DBUser, $DBPassword, $RealmID, $GUID)) { if (!_doesCharacterHasDeserterDebuff($GUID, $RealmID, $DBUser, $DBPassword)) { echo _getAlreadyEffectSTR($L[144]); } else { _FORM_TO_CHAR_ACTIONS($SA ? $SA : _FORM_CHAR_ARRAY($AccountDBHost, $AccountDB, $DBUser, $DBPassword, $RealmID, $GUID), $L[90], $REALSON, $PriceForRemoveDeserter, null, null, null, null, null); } } else { echo _RDiv($L[60]); } } else { echo _RDiv($L[9]); } } else { echo _RDiv($L[9]); } include_once '_template/_footer.php'; ob_end_flush();
} else { if ($_POST['new_password'] !== $_POST['new_password2']) { $reason = _RDiv($L[211]); } else { $SHA1Password = SHA1Password(_getUsername(), _Z($_POST['cur_password'])); $SHA1PasswordNEW = SHA1Password(_getUsername(), _Z($_POST['new_password'])); $connection = _MySQLConnect($AccountDBHost, $DBUser, $DBPassword, $AccountDB); $query = mysql_query("SELECT `id` FROM `account` WHERE `username` = '" . _getUsername() . "' AND `sha_pass_hash` = '" . _X($SHA1Password) . "';", $connection) or die(mysql_error()); $result = mysql_fetch_array($query); if (!empty($result['id'])) { mysql_query("UPDATE `account` SET `sha_pass_hash` = '" . _X($SHA1PasswordNEW) . "',`sessionkey` = '',`v` = '',`s` = '' WHERE `username` = '" . _getUsername() . "';", $connection) or die(mysql_error()); _SpendMythCoins(0, 13, "", 0, "", 0, "", $connection); $reason = _BDiv($L[213]); mysql_close($connection) or die(mysql_error()); } else { $reason = _RDiv($L[212]); mysql_close($connection) or die(mysql_error()); } } } ?> <div class = 'text-center'> <h2><?php echo $L[93]; ?> </h2> <?php echo $reason; ?> <fieldset> <form action = '<?php
$REASON = _RDiv($L[145]); } else { if ($_POST['password'] !== $_POST['password2']) { $REASON = _RDiv($L[148]); } else { if ($_POST['email'] !== $_POST['email2']) { $REASON = _RDiv($L[149]); } else { if (!_is_e_mail_ok($_POST['email'])) { $REASON = _RDiv($L[158]); } else { if (!_is_details_already_used($AccountDBHost, $AccountDB, $DBUser, $DBPassword, 'email', $_POST['email'])) { $REASON = _RDiv($L[159]); } else { if (!_is_details_already_used($AccountDBHost, $AccountDB, $DBUser, $DBPassword, 'username', $_POST['username'])) { $REASON = _RDiv($L[160]); } else { $username = _Z($_POST['username']); $email = _Z($_POST['email']); $SHA1Password = SHA1Password($username, _Z($_POST['password'])); $connection = _MySQLConnect($AccountDBHost, $DBUser, $DBPassword, $AccountDB); mysql_query("INSERT INTO `account`(`username`,`sha_pass_hash`,`email`) VALUES ('" . _X($username) . "', '" . _X($SHA1Password) . "', '" . _X($email) . "');", $connection) or die(mysql_error()); $_SESSION['AccountID'] = (int) mysql_insert_id($connection); $_SESSION['AccountUN'] = $username; _SpendMythCoins(0, 12, "", 0, "", 0, "", $connection); _GiveMythCoins(5, $L[162], $connection); mysql_close($connection) or die(mysql_error()); $REASON = _GDiv($L[17]); Header('Location: _userside.php'); } }
function _getNotEnoughtGoldSTR() { global $L; return _RDiv($L[18] . " <img alt = '' src = '_template/img/gold_coin.png'>"); }
function _Migration_STEP2FORM($TXT) { global $L; echo _RDiv($TXT) . "\n <div class = 'alert text-center'>" . $L[50] . "</div>\n <div class = 'text-center'>\n <br/>\n <form action = '" . $_SERVER['PHP_SELF'] . "' method = 'post' enctype = 'multipart/form-data'>\n <input class = 'clearfix' type = 'text' name = 'rename'>\n <p><button class = 'btn btn-primary' type = 'submit'>" . $L[146] . "</button></p>\n </form>\n </div>\n </div>"; }
} else { if (!_ServerOn($SIP, $SPT)) { $realson = $L[119] . " '" . $REALM_NAME . "' <u>" . $L[119] . "!</u>"; } } } } } } } $GUID = _getCharacterGUID($DBUser, $DBPassword, $CHAR_REALM); $connection = _MySQLConnect($AccountDBHost, $DBUser, $DBPassword, $AccountDB); if (empty($realson)) { $ID = _DUMP_WriteDumpInDB($connection, $DUMP, $CHAR_NAME, $CHAR_ACCOUNT_ID, $CHAR_REALM, $o_Account, $o_Password, $O_REALMLIST, $O_REALM, $o_URL, $GUID, $GM_ACCOUNT_ID, $L[35]); } else { return _Migration_STEP1FORM($connection, _RDiv($realson)); } $connection = _MySQLConnect(_HostDBSwitch($CHAR_REALM), $DBUser, $DBPassword, _CharacterDBSwitch($CHAR_REALM)); unset($_SESSION['STEP2']); $char_money = _MaxValue($json['uinf']['money'], $MaxMoney); $char_speccount = $json['uinf']['specs']; $char_gender = $json['uinf']['gender'] - 2 == 1 ? 1 : 0; $char_totalkills = $json['uinf']['kills']; $char_arenapoints = _MaxValue($json['uinf']['arenapoints'], $MaxAP); $char_honorpoints = _MaxValue($json['uinf']['honor'], $MaxHP); $INVrow = ""; $GEMrow = ""; $CURrow = ""; $row = ""; $QUERYFOREXECUTE = ""; mysql_query("\n INSERT INTO `characters`(`guid`,`name`,`level`,`gender`,`totalHonorPoints`,`arenaPoints`,`totalKills`,`money`,`class`,`race`,`at_login`,`account`,`taximask`,`speccount`,`online`) VALUES (\n " . $GUID . ",'" . _X($CHAR_NAME) . "'," . (int) $CharLevel . "," . (int) $char_gender . "," . (int) $char_honorpoints . "," . (int) $char_arenapoints . ",\n " . (int) $char_totalkills . "," . (int) $char_money . "," . $ClassID . "," . $RaceID . ", 0x180, 1, '0 0 0 0 0 0 0 0 0 0 0 0 0 0'," . (int) $char_speccount . ", 0);", $connection) or die(mysql_error());